| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Information disclosure may occur during a video call if a device resets due to a non-conforming RTCP packet that doesn`t adhere to RFC standards. |
| Transient DOS while connecting STA to AP and initiating ADD TS request from AP to establish TSpec session. |
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request. |
| Memory corruption occurs while connecting a STA to an AP and initiating an ADD TS request from the AP to establish a TSpec session. |
| memory corruption when an invalid firehose patch command is invoked. |
| Transient DOS when processing the non-transmitted BSSID profile sub-elements present within the MBSSID Information Element (IE) of a beacon frame that is received from over-the-air (OTA). |
| Transient DOS when registration accept OTA is received with incorrect ciphering key data IE in Modem. |
| Information disclosure while decoding Tracking Area Update Accept or Attach Accept message received from network. |
| Memory corruption while processing video packets received from video firmware. |
| Information Disclosure in Qualcomm IPC while reading values from shared memory in VM. |
| Transient DOS in Audio when invoking callback function of ASM driver. |
| Information Disclosure in Data Modem while performing a VoLTE call with an undefined RTCP FB line value. |
| While processing the authentication message in UE, improper authentication may lead to information disclosure. |
| Memory corruption in Audio while processing RT proxy port register driver. |
| Memory corruption while processing Listen Sound Model client payload buffer when there is a request for Listen Sound session get parameter from ST HAL. |
| Memory Corruption in HLOS while importing a cryptographic key into KeyMaster Trusted Application. |
| Memory corruption while running NPU, when NETWORK_UNLOAD and (NETWORK_UNLOAD or NETWORK_EXECUTE_V2) commands are submitted at the same time. |
| Cryptographic issue while performing attach with a LTE network, a rogue base station can skip the authentication phase and immediately send the Security Mode Command. |
| Memory corruption while processing the event ring, the context read pointer is untrusted to HLOS and when it is passed with arbitrary values, may point to address in the middle of ring element. |
| Memory corruption in Boot while running a ListVars test in UEFI Menu during boot. |
